Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/GjoBlv5fjYii-qIfNft9OcrRxPw.roa
File: GjoBlv5fjYii-qIfNft9OcrRxPw.roa (raw, json)
Hash identifier: 4c22Y0IBFW82KB9f+cT3KTkAldX4kGjUr2k+6Ck+qNw=
Subject key identifier: 1A:3A:01:96:FE:5F:8D:88:A2:FA:A2:1F:35:FB:7D:39:CA:D1:C4:FC
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 0189C065FE8C84A422FD8094317F0AB99730
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/GjoBlv5fjYii-qIfNft9OcrRxPw.roa
Signing time: Fri 04 Aug 2023 11:54:17 +0000
ROA not before: Fri 04 Aug 2023 11:54:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210906
IP address blocks: 82.140.177.0/24 maxlen: 24
82.140.180.0/24 maxlen: 24
89.117.34.0/24 maxlen: 24
89.117.189.0/24 maxlen: 24
89.117.191.0/24 maxlen: 24
89.117.131.0/24 maxlen: 24
84.46.204.0/24 maxlen: 24
84.46.207.0/24 maxlen: 24
89.116.110.0/23 maxlen: 23
89.116.109.0/24 maxlen: 24
89.116.114.0/24 maxlen: 24
89.116.122.0/24 maxlen: 24
89.116.120.0/23 maxlen: 23
89.116.133.0/24 maxlen: 24
89.116.136.0/24 maxlen: 24
89.116.134.0/24 maxlen: 24
89.116.138.0/23 maxlen: 23
89.116.145.0/24 maxlen: 24
89.116.142.0/24 maxlen: 24
89.116.152.0/24 maxlen: 24
89.116.159.0/24 maxlen: 24
89.116.157.0/24 maxlen: 24
89.116.57.0/24 maxlen: 24
89.116.55.0/24 maxlen: 24
86.38.206.0/24 maxlen: 24
86.38.206.0/23 maxlen: 23
89.116.71.0/24 maxlen: 24
86.38.207.0/24 maxlen: 24
89.116.78.0/23 maxlen: 23
89.116.77.0/24 maxlen: 24
89.116.78.0/24 maxlen: 24
89.116.79.0/24 maxlen: 24
86.38.222.0/24 maxlen: 24
89.116.90.0/24 maxlen: 24
89.116.94.0/23 maxlen: 23
89.116.98.0/24 maxlen: 24
89.116.97.0/24 maxlen: 24
89.116.94.0/24 maxlen: 24
89.116.95.0/24 maxlen: 24
89.116.93.0/24 maxlen: 24
89.116.104.0/23 maxlen: 23
89.116.101.0/24 maxlen: 24
86.38.236.0/24 maxlen: 24
86.38.234.0/24 maxlen: 24
89.116.216.0/23 maxlen: 23
89.116.219.0/24 maxlen: 24
89.116.222.0/24 maxlen: 24
82.140.129.0/24 maxlen: 24
82.140.130.0/24 maxlen: 24
82.140.128.0/24 maxlen: 24
89.116.238.0/24 maxlen: 24
89.116.240.0/24 maxlen: 24
82.140.128.0/23 maxlen: 23
89.116.245.0/24 maxlen: 24
89.116.251.0/24 maxlen: 24
89.116.249.0/24 maxlen: 24
89.117.4.0/24 maxlen: 24
89.116.254.0/24 maxlen: 24
82.140.159.0/24 maxlen: 24
89.116.167.0/24 maxlen: 24
89.116.170.0/24 maxlen: 24
89.116.188.0/24 maxlen: 24
89.116.187.0/24 maxlen: 24
89.116.192.0/24 maxlen: 24
89.116.191.0/24 maxlen: 24
89.116.196.0/23 maxlen: 23
89.116.194.0/24 maxlen: 24
89.116.199.0/24 maxlen: 24
89.116.206.0/23 maxlen: 23
89.116.204.0/23 maxlen: 23
89.116.201.0/24 maxlen: 24
86.38.26.0/24 maxlen: 24
86.38.36.0/24 maxlen: 24
86.38.2.0/24 maxlen: 24
89.116.0.0/24 maxlen: 24
89.116.14.0/24 maxlen: 24
86.38.158.0/23 maxlen: 23
89.116.18.0/24 maxlen: 24
86.38.157.0/24 maxlen: 24
86.38.154.0/24 maxlen: 24
86.38.158.0/24 maxlen: 24
86.38.159.0/24 maxlen: 24
86.38.160.0/24 maxlen: 24
89.116.40.0/24 maxlen: 24
86.38.128.0/23 maxlen: 23
86.38.128.0/24 maxlen: 24
86.38.129.0/24 maxlen: 24
86.38.130.0/24 maxlen: 24
89.117.230.0/23 maxlen: 23
89.117.243.0/24 maxlen: 24
89.117.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c0:65:fe:8c:84:a4:22:fd:80:94:31:7f:0a:b9:97:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Aug 4 11:54:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a3a0196fe5f8d88a2faa21f35fb7d39cad1c4fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:1f:01:1f:ac:1d:18:24:85:a3:4e:a1:9b:e8:
ca:61:fe:37:02:cf:cf:b9:c3:58:6b:7d:e6:b1:af:
fe:23:ab:2b:c9:59:80:97:b2:47:61:4a:9a:3c:05:
55:e2:a1:ad:1a:db:d1:73:60:43:b2:c5:b1:80:ca:
bb:bd:b2:a8:f5:66:81:b5:8c:ac:83:03:a3:51:fb:
22:e0:58:7f:d2:30:19:99:3d:95:47:ae:30:d1:36:
45:c3:b1:89:75:a4:2a:a2:4c:6c:63:33:19:28:e2:
43:e1:fb:b0:a9:98:23:f6:37:57:6b:79:65:08:7a:
31:d1:48:ca:92:2f:ce:bc:db:08:7c:81:fb:b7:5f:
d7:12:75:2f:3c:84:a8:46:c2:26:d1:17:3d:78:bc:
2d:0b:15:e5:6e:c3:4e:ba:91:f5:f8:88:04:14:ef:
97:33:e6:27:3f:33:43:2d:88:a8:e1:a1:36:14:71:
a9:5c:c8:35:85:3e:01:03:1f:f2:01:92:80:41:f3:
98:eb:62:9b:21:e5:c0:16:8a:e4:5c:52:5a:95:97:
26:7c:be:e7:6f:e5:cf:16:1c:e5:e4:a5:b8:65:f0:
be:88:fc:10:64:4f:27:62:e7:85:6d:24:fc:ce:52:
f6:b6:7f:78:b4:71:5d:ba:1c:89:1f:dd:07:e3:66:
06:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:3A:01:96:FE:5F:8D:88:A2:FA:A2:1F:35:FB:7D:39:CA:D1:C4:FC
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/GjoBlv5fjYii-qIfNft9OcrRxPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.128.0-82.140.130.255
82.140.159.0/24
82.140.177.0/24
82.140.180.0/24
84.46.204.0/24
84.46.207.0/24
86.38.2.0/24
86.38.26.0/24
86.38.36.0/24
86.38.128.0-86.38.130.255
86.38.154.0/24
86.38.157.0-86.38.160.255
86.38.206.0/23
86.38.222.0/24
86.38.234.0/24
86.38.236.0/24
89.116.0.0/24
89.116.14.0/24
89.116.18.0/24
89.116.40.0/24
89.116.55.0/24
89.116.57.0/24
89.116.71.0/24
89.116.77.0-89.116.79.255
89.116.90.0/24
89.116.93.0-89.116.95.255
89.116.97.0-89.116.98.255
89.116.101.0/24
89.116.104.0/23
89.116.109.0-89.116.111.255
89.116.114.0/24
89.116.120.0-89.116.122.255
89.116.133.0-89.116.134.255
89.116.136.0/24
89.116.138.0/23
89.116.142.0/24
89.116.145.0/24
89.116.152.0/24
89.116.157.0/24
89.116.159.0/24
89.116.167.0/24
89.116.170.0/24
89.116.187.0-89.116.188.255
89.116.191.0-89.116.192.255
89.116.194.0/24
89.116.196.0/23
89.116.199.0/24
89.116.201.0/24
89.116.204.0/22
89.116.216.0/23
89.116.219.0/24
89.116.222.0/24
89.116.238.0/24
89.116.240.0/24
89.116.245.0/24
89.116.249.0/24
89.116.251.0/24
89.116.254.0/24
89.117.4.0/24
89.117.34.0/24
89.117.131.0/24
89.117.189.0/24
89.117.191.0/24
89.117.230.0/23
89.117.243.0-89.117.244.255
Signature Algorithm: sha256WithRSAEncryption
29:04:a9:cf:e1:91:ee:8d:5b:16:be:ad:76:2b:f3:ef:4c:93:
14:b6:04:01:85:92:33:a4:63:76:6c:53:50:90:5a:48:e1:1b:
f1:55:60:70:c7:60:31:10:71:c2:8c:6e:c2:77:96:2d:60:a6:
18:6c:54:ab:43:b1:ed:ea:af:b1:43:6a:67:5a:0b:90:23:5a:
d5:e7:e9:a7:bf:3c:8b:02:ca:79:00:3c:8a:cd:22:3e:6e:71:
8b:ef:23:3e:80:30:39:be:63:40:60:ba:d1:7c:77:94:07:0d:
21:03:4d:9b:bf:46:b1:44:5d:71:00:39:e9:ce:72:7c:3e:40:
d7:e3:c6:56:79:8e:9f:dc:5e:a5:c1:f9:15:11:28:03:bf:22:
47:b4:eb:54:25:d4:b8:6a:da:2a:95:48:ee:9e:17:cb:0b:85:
10:5c:c5:9f:24:02:b1:01:e5:fb:97:81:30:d6:9e:d7:df:72:
5a:22:7f:0b:ae:e4:13:46:74:ef:72:2c:9a:cc:ee:ae:3d:21:
d1:bc:23:f0:a6:fe:fa:cb:bc:ff:f0:19:99:bb:97:42:fe:b8:
94:cd:a1:9e:14:ae:66:70:b3:f2:4c:35:af:bd:6e:a2:62:28:
ec:c9:e0:3b:b9:16:37:d5:5b:11:15:ae:1d:72:5a:51:be:dd:
fa:91:aa:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:46 2025 by rpki-client